mirror of
https://github.com/Growstuff/growstuff.git
synced 2026-03-27 03:02:43 -04:00
229 lines
7.8 KiB
Ruby
229 lines
7.8 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
require 'rails_helper'
|
|
|
|
RSpec.describe 'Harvests', type: :request do
|
|
subject { JSON.parse response.body }
|
|
|
|
let(:headers) { { 'Accept' => 'application/vnd.api+json' } }
|
|
let!(:harvest) { FactoryBot.create(:harvest) }
|
|
let(:harvest_encoded_as_json_api) do
|
|
{ "id" => harvest.id.to_s,
|
|
"type" => "harvests",
|
|
"links" => { "self" => resource_url },
|
|
"attributes" => attributes,
|
|
"relationships" => {
|
|
"crop" => crop_as_json_api,
|
|
"planting" => planting_as_json_api,
|
|
"owner" => owner_as_json_api,
|
|
"photos" => photos_as_json_api
|
|
} }
|
|
end
|
|
|
|
let(:resource_url) { "http://www.example.com/api/v1/harvests/#{harvest.id}" }
|
|
|
|
let(:crop_as_json_api) do
|
|
{ "links" =>
|
|
{ "self" =>
|
|
"#{resource_url}/relationships/crop",
|
|
"related" => "#{resource_url}/crop" } }
|
|
end
|
|
|
|
let(:owner_as_json_api) do
|
|
{ "links" =>
|
|
{ "self" => "#{resource_url}/relationships/owner",
|
|
"related" => "#{resource_url}/owner" } }
|
|
end
|
|
|
|
let(:planting_as_json_api) do
|
|
{ "links" =>
|
|
{ "self" =>
|
|
"#{resource_url}/relationships/planting",
|
|
"related" => "#{resource_url}/planting" } }
|
|
end
|
|
|
|
let(:photos_as_json_api) do
|
|
{ "links" =>
|
|
{ "self" => "#{resource_url}/relationships/photos",
|
|
"related" => "#{resource_url}/photos" } }
|
|
end
|
|
|
|
let(:attributes) do
|
|
{
|
|
"harvested-at" => "2015-09-17",
|
|
"description" => harvest.description,
|
|
"unit" => harvest.unit,
|
|
"weight-quantity" => harvest.weight_quantity.to_s,
|
|
"weight-unit" => harvest.weight_unit,
|
|
"si-weight" => harvest.si_weight
|
|
}
|
|
end
|
|
|
|
describe '#index' do
|
|
before { get '/api/v1/harvests', params: {}, headers: }
|
|
|
|
it { expect(subject['data']).to include(harvest_encoded_as_json_api) }
|
|
end
|
|
|
|
describe '#show' do
|
|
before { get "/api/v1/harvests/#{harvest.id}", params: {}, headers: }
|
|
|
|
it { expect(subject['data']['attributes']).to eq(attributes) }
|
|
it { expect(subject['data']['relationships']).to include("planting" => planting_as_json_api) }
|
|
it { expect(subject['data']['relationships']).to include("crop" => crop_as_json_api) }
|
|
it { expect(subject['data']['relationships']).to include("photos" => photos_as_json_api) }
|
|
it { expect(subject['data']['relationships']).to include("owner" => owner_as_json_api) }
|
|
it { expect(subject['data']).to eq(harvest_encoded_as_json_api) }
|
|
end
|
|
|
|
context 'filtering' do
|
|
let!(:harvest2) { FactoryBot.create(:harvest, planting: create(:planting)) }
|
|
|
|
it 'filters by crop' do
|
|
get("/api/v1/harvests?filter[crop_id]=#{harvest2.crop.id}", params: {}, headers:)
|
|
expect(subject['data'].size).to eq(1)
|
|
expect(subject['data'][0]['id']).to eq(harvest2.id.to_s)
|
|
end
|
|
|
|
it 'filters by planting' do
|
|
get("/api/v1/harvests?filter[planting_id]=#{harvest2.planting.id}", params: {}, headers:)
|
|
|
|
expect(response).to have_http_status(:ok)
|
|
expect(subject['data'].size).to eq(1)
|
|
expect(subject['data'][0]['id']).to eq(harvest2.id.to_s)
|
|
end
|
|
|
|
it 'filters by plant_part' do
|
|
get("/api/v1/harvests?filter[plant_part]=#{harvest2.plant_part.id}", params: {}, headers:)
|
|
|
|
expect(response).to have_http_status(:ok)
|
|
expect(subject['data'].size).to eq(1)
|
|
expect(subject['data'][0]['id']).to eq(harvest2.id.to_s)
|
|
end
|
|
|
|
it 'filters by owner' do
|
|
get("/api/v1/harvests?filter[owner_id]=#{harvest2.owner.id}", params: {}, headers:)
|
|
|
|
expect(response).to have_http_status(:ok)
|
|
expect(subject['data'].size).to eq(1)
|
|
expect(subject['data'][0]['id']).to eq(harvest2.id.to_s)
|
|
end
|
|
end
|
|
|
|
describe '#create' do
|
|
let!(:member) { create(:member) }
|
|
let(:token) do
|
|
member.regenerate_api_token
|
|
member.api_token.token
|
|
end
|
|
let(:headers) { { 'Accept' => 'application/vnd.api+json', 'Content-Type' => 'application/vnd.api+json' } }
|
|
let(:auth_headers) { headers.merge('Authorization' => "Bearer #{token}") }
|
|
let(:crop) { create(:crop) }
|
|
let(:planting) { create(:planting, owner: member) }
|
|
let(:plant_part) { create(:plant_part) }
|
|
let(:harvest_params) do
|
|
{
|
|
data: {
|
|
type: 'harvests',
|
|
attributes: {
|
|
description: 'My API harvests'
|
|
},
|
|
relationships: {
|
|
planting: { data: { type: 'plantings', id: planting.id } }
|
|
# plant_part: { data: { type: 'plant_parts', id: plant_part.id } }
|
|
}
|
|
}
|
|
}.to_json
|
|
end
|
|
|
|
it 'returns 401 Unauthorized without a token' do
|
|
post '/api/v1/harvests', params: harvest_params, headers: headers
|
|
expect(response).to have_http_status(:unauthorized)
|
|
end
|
|
|
|
it 'returns 201 Created with a valid token' do
|
|
post '/api/v1/harvests', params: harvest_params, headers: auth_headers
|
|
|
|
expect(response).to have_http_status(:created)
|
|
expect(member.harvests.count).to eq(1)
|
|
end
|
|
end
|
|
|
|
describe '#update' do
|
|
let!(:member) { create(:member) }
|
|
let(:token) do
|
|
member.regenerate_api_token
|
|
member.api_token.token
|
|
end
|
|
let(:headers) { { 'Accept' => 'application/vnd.api+json', 'Content-Type' => 'application/vnd.api+json' } }
|
|
let(:auth_headers) { headers.merge('Authorization' => "Bearer #{token}") }
|
|
let(:harvest) { create(:harvest, owner: member) }
|
|
let(:other_member_harvest) { create(:harvest) }
|
|
let(:update_params) do
|
|
{
|
|
data: {
|
|
type: 'harvests',
|
|
id: harvest.id.to_s,
|
|
attributes: {
|
|
description: 'An updated harvest'
|
|
}
|
|
}
|
|
}.to_json
|
|
end
|
|
|
|
it 'returns 401 Unauthorized without a token' do
|
|
patch "/api/v1/harvests/#{harvest.id}", params: update_params, headers: headers
|
|
expect(response).to have_http_status(:unauthorized)
|
|
end
|
|
|
|
it 'returns 200 OK with a valid token for own harvest' do
|
|
patch "/api/v1/harvests/#{harvest.id}", params: update_params, headers: auth_headers
|
|
|
|
expect(response).to have_http_status(:ok)
|
|
expect(harvest.reload.description).to eq('An updated harvest')
|
|
end
|
|
|
|
it 'returns 403 Forbidden for another member\'s harvest' do
|
|
update_params_for_other = {
|
|
data: {
|
|
type: 'harvests',
|
|
id: other_member_harvest.id.to_s,
|
|
attributes: {
|
|
description: 'An updated harvest'
|
|
}
|
|
}
|
|
}.to_json
|
|
patch "/api/v1/harvests/#{other_member_harvest.id}", params: update_params_for_other, headers: auth_headers
|
|
expect(response).to have_http_status(:forbidden)
|
|
end
|
|
end
|
|
|
|
describe '#delete' do
|
|
let!(:member) { create(:member) }
|
|
let(:token) do
|
|
member.regenerate_api_token
|
|
member.api_token.token
|
|
end
|
|
let(:headers) { { 'Accept' => 'application/vnd.api+json', 'Content-Type' => 'application/vnd.api+json' } }
|
|
let(:auth_headers) { headers.merge('Authorization' => "Bearer #{token}") }
|
|
let!(:harvest) { create(:harvest, owner: member) }
|
|
let(:other_member_harvest) { create(:harvest) }
|
|
|
|
it 'returns 401 Unauthorized without a token' do
|
|
delete "/api/v1/harvests/#{harvest.id}", headers: headers
|
|
expect(response).to have_http_status(:unauthorized)
|
|
end
|
|
|
|
it 'returns 204 No Content with a valid token for own harvest' do
|
|
delete "/api/v1/harvests/#{harvest.id}", headers: auth_headers
|
|
expect(response).to have_http_status(:no_content)
|
|
expect(Garden.find_by(id: harvest.id)).to be_nil
|
|
end
|
|
|
|
it 'returns 403 Forbidden for another member\'s harvest' do
|
|
delete "/api/v1/harvests/#{other_member_harvest.id}", headers: auth_headers
|
|
expect(response).to have_http_status(:forbidden)
|
|
end
|
|
end
|
|
end
|